Which task should an IBM Security Access Manager V9.0 deployment professional perform prior to sharing the support files with other stakeholders?
A. Generate A MD5 hash of the support file's filename
B. Use an archiving utility to compress the support file
C. Inspect the contents of the support file and censor any confidential information
D. Delete all the log files from the support file because they are not useful to the stakeholders
The IBM Security Access Manager V9.0 system deployment professional is about to make a significant change to the system configuration and plans to take an appliance snapshot to protect against problems occurring as a result of the change.
Which two statements are correct regarding appliance snapshots? (Choose two.)
A. Snapshot files contain the contents of the internal user registry.
B. Appliance snapshots are supported only on virtual appliances running under VMware ESXi.
C. The purpose of snapshots is to restore prior configuration and policy settings to an appliance.
D. Snapshot files contain all the `must get' data required to be sent to IBM Support in the event of a PMR being raised.
E. An appliance snapshot can be restored on any appliance that has the same firmware level as the snapshot and the same network infrastructure.
The deployment professional wants to back up the embedded LDAP personal certificate, including the private key. They navigate to Manage System Settings -> SSL Certificates -> and select the "extract" option.
Which file format is the resulting certificate backup?
A. .p12
B. .kdb
C. .jks
D. .cer
An IBM Security Access Manager V9.0 deployment specialist is getting reports of failing requests. Analysis of a support file shows many connections to the backend server in TIME_WAIT state?
Where is the setting "sysctl.net.ipv4.tcp_tw_reuse = 1" added?
A. In the [tcp] stanza of the reverse proxy instance conf file
B. In the [server] stanza of the reverse proxy instance conf file
C. In the LMI "Manage System Settings -> Network Settings -> Tuning" panel
D. In the LMI "Manage System Settings -> System Settings -> Advanced Tuning Parameters" panel
An IBM Security Access Manager (ISAM) V9.0 customer is deploying a new WebSphere based Java application and wants to protect it via an ISAM Web Reverse Proxy. The user registries are not shared between ISAM and Websphere Application Server.
Which trust configuration can be used to achieve Single Sign On between ISAM Web Reverse Proxy and Websphere Application Server?
A. LTPAToken
B. LTPAToken Version 2
C. SPNEGO Trust Association Interceptor
D. Extended Trust Association Interceptor plus (eTAI)
An IBM Security Access Manager V9.0 deployment professional needs to create the HTTP-Tag-Value attribute to pass values to a backend server as headers.
How can this be done?
A. By creating an HTTP rule which is attached to the ACL
B. By creating an AuthzRule which pulls the header from the ADI
C. By creating an extended attribute on a POP protecting the junction
D. By creating an extended attribute on the junction protected object
Which two resources should a deployment professional check to ensure an appliance is at the very latest level? (Choose two.)
A. IBM Fix Central
B. IBM Security YouTube channel
C. Google IBM Security Access Manager V9.0 Circle
D. LinkedIn IBM Security Access Manager V9.0 Group
E. Fixes by version for IBM Security Access Manager V9.0
The IBM Security Access Manager (ISAM) V9.0 deployment professional is attempting to strike the correct balance between ease of administration/configuration and security, and wants to limit where in the environment security policy can be changed.
On which ISAM component is the Secure Web Settings -> Policy Administration tool automatically disabled?
A. Runtime cluster restricted node
B. Master External Reference Entity
C. Distributed Session Cache primary node
D. Runtime cluster Standby Policy Server node
A customer has setup IBM Security Access Manager V9.0 hardware appliances (AP, A1, A2) in a cluster. The appliances (A1, A2) that host reverse proxies are labeled as "restricted" in the cluster. AP is the Primary of the cluster.
There is one reverse proxy in appliance A1 and two in appliance A2. These reverse proxies are being tuned for performance. The appliance A1 and A2 max socket range has been set to 64510. What is true in this situation?
A. The appliance AP cannot be used for running reverse proxies to balance load
B. The reverse proxy in appliance A1 can have a maximum thread count of 30,000
C. Both reverse proxies in appliance A2 can have a maximum thread count of 30,000
D. Appliance A2 with two reverse proxies will perform better than Appliance A1 with one reverse proxy
The IBM Security Access Manager (ISAM) V9.0 deployment professional is setting up a new junction. The back-end junctioned server listens on port 443 (SSL), but does not require mutual certificate authentication.
Which keystore does the deployment professional need to update?
A. The WebSEAL signer certificate needs to be imported into the keystore used by the back-end server.
B. The WebSEAL Test-Only certificate needs to be imported into the keystore used by the back-end server.
C. The back-end signer certificate needs to be imported into the WebSEAL keystore on the ISAM appliance.
D. The back-end signer certificate needs to be imported into the "Imi_trust_store" keystore on the ISAM appliance.
Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only IBM exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your C2150-609 exam preparations and IBM certification application, do not hesitate to visit our Vcedump.com to find your solutions here.